|
273881
|
- |
|
xen
fedoraproject
|
xen
fedora
|
The ARM GIC distributor virtualization in Xen 4.4.x and 4.5.x allows local guests to cause a denial of service by causing a large number messages to be logged.
|
CWE-399
Resource Management Errors
|
CVE-2015-1563
|
2024-11-21 11:25 |
2015-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273882
|
- |
|
saurus
|
saurus_cms
|
Multiple cross-site scripting (XSS) vulnerabilities in Saurus CMS 4.7.0 allow remote attackers to inject arbitrary web script or HTML via the (1) search parameter to admin/user_management.php, (2) da…
|
CWE-79
Cross-site Scripting
|
CVE-2015-1562
|
2024-11-21 11:25 |
2015-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273883
|
- |
|
digium
|
asterisk
|
Asterisk Open Source 12.x before 12.8.1 and 13.x before 13.1.1, when using the PJSIP channel driver, does not properly reclaim RTP ports, which allows remote authenticated users to cause a denial of …
|
CWE-399
Resource Management Errors
|
CVE-2015-1558
|
2024-11-21 11:25 |
2015-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273884
|
- |
|
fancyfon
|
famoc
|
Multiple SQL injection vulnerabilities in FancyFon FAMOC before 3.17.4 allow (1) remote attackers to execute arbitrary SQL commands via the device ID REST parameter (PATH_INFO) to /ajax.php or (2) re…
|
CWE-89
SQL Injection
|
CVE-2015-1514
|
2024-11-21 11:25 |
2015-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273885
|
- |
|
siphon
|
siphone_enterprise_pbx
|
SQL injection vulnerability in SIPhone Enterprise PBX allows remote attackers to execute arbitrary SQL commands via the Username.
|
CWE-89
SQL Injection
|
CVE-2015-1513
|
2024-11-21 11:25 |
2015-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273886
|
- |
|
fancyfon
|
famoc
|
Multiple cross-site scripting (XSS) vulnerabilities in FancyFon FAMOC before 3.17.4 allow remote attackers to inject arbitrary web script or HTML via the (1) LoginForm[username] to ui/system/login or…
|
CWE-79
Cross-site Scripting
|
CVE-2015-1512
|
2024-11-21 11:25 |
2015-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273887
|
- |
|
fork-cms
|
fork_cms
|
Multiple SQL injection vulnerabilities in Translations in Fork CMS before 3.8.6 allow remote authenticated users to execute arbitrary SQL commands via the (1) language[] or (2) type[] parameter to pr…
|
CWE-89
SQL Injection
|
CVE-2015-1467
|
2024-11-21 11:25 |
2015-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273888
|
- |
|
fli4l
|
fli4l
|
Multiple cross-site scripting (XSS) vulnerabilities in the web administration frontend in the httpd package in fli4l before 3.10.1 and 4.0 before 2015-01-30 allow remote attackers to inject arbitrary…
|
CWE-79
Cross-site Scripting
|
CVE-2015-1444
|
2024-11-21 11:25 |
2015-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273889
|
- |
|
aas9
|
zerocms
|
SQL injection vulnerability in views/zero_transact_user.php in the administrative backend in ZeroCMS 1.3.3, 1.3.2, and earlier allows remote authenticated users to execute arbitrary SQL commands via …
|
CWE-89
SQL Injection
|
CVE-2015-1442
|
2024-11-21 11:25 |
2015-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273890
|
- |
|
mcafee
|
data_loss_prevention_endpoint
|
McAfee Data Loss Prevention Endpoint (DLPe) before 9.3.400 allows local users to write to arbitrary memory locations, and consequently gain privileges, via a crafted (1) 0x00224014 or (2) 0x0022c018 …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-1305
|
2024-11-21 11:25 |
2015-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
